|
-
March 15th, 2010, 10:02 PM
#11
ComboFix 10-03-15.04 - Ray 03/15/2010 18:36:57.1.1 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2047.1369 [GMT -7:00]
Running from: c:\documents and settings\Ray\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free *On-access scanning disabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: ZoneAlarm Firewall *disabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\docume~1\Ray\LOCALS~1\Temp\IadHide3.dll
c:\documents and settings\Ray\Local Settings\Temp\IadHide3.dll
.
((((((((((((((((((((((((( Files Created from 2010-02-16 to 2010-03-16 )))))))))))))))))))))))))))))))
.
2010-03-14 17:19 . 2010-03-14 17:19 -------- d-----w- c:\program files\Trend Micro
2010-03-14 00:09 . 2010-03-14 00:09 -------- d-----w- c:\documents and settings\Ray\Application Data\Malwarebytes
2010-03-14 00:09 . 2010-01-08 00:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-03-14 00:09 . 2010-03-14 00:09 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-03-14 00:09 . 2010-03-14 00:09 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2010-03-14 00:09 . 2010-01-08 00:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-03-13 21:43 . 2010-03-13 21:43 12464 ----a-w- c:\windows\system32\avgrsstx.dll
2010-03-13 05:10 . 2010-03-13 05:10 -------- d-----w- c:\documents and settings\Ray\Local Settings\Application Data\ATI
2010-03-13 05:10 . 2010-03-13 05:10 -------- d-----w- c:\documents and settings\Ray\Application Data\ATI
2010-03-13 05:10 . 2010-03-13 05:10 126 ----a-w- c:\documents and settings\Ray\Local Settings\Application Data\fusioncache.dat
2010-03-13 05:05 . 2010-03-13 05:05 -------- d-----w- c:\program files\Common Files\ATI Technologies
2010-03-13 04:33 . 2010-03-13 04:33 -------- d-----w- c:\program files\DIFX
2010-03-13 04:33 . 2006-07-02 06:39 36864 ----a-w- c:\windows\system32\drivers\AmdK8.sys
2010-03-13 04:13 . 2010-03-13 04:51 -------- d-----w- c:\program files\Setup Files
2010-03-13 04:11 . 2010-03-13 04:11 -------- d-----w- c:\program files\MSI
2010-02-27 18:36 . 2010-02-27 18:36 -------- d-----w- c:\documents and settings\Ray\Application Data\Leadertech
2010-02-27 18:36 . 2010-02-27 18:36 -------- d-----w- c:\documents and settings\Ray\Local Settings\Application Data\Logishrd
2010-02-27 18:36 . 2010-03-13 04:05 16400 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2010-02-27 18:36 . 2008-11-08 02:55 16928 ------w- c:\windows\system32\spmsgXP_2k3.dll
2010-02-27 18:34 . 2010-03-13 04:05 -------- d-----w- c:\documents and settings\All Users\Application Data\Logishrd
2010-02-27 18:28 . 2010-03-13 04:06 -------- d-----w- c:\program files\Common Files\LogiShrd
2010-02-27 18:28 . 2010-02-27 18:29 -------- d-----w- c:\documents and settings\Ray\Application Data\Logishrd
2010-02-27 18:20 . 2010-02-27 18:20 -------- d-----w- c:\documents and settings\Ray\Application Data\Blitware
2010-02-27 18:20 . 2010-02-27 18:20 -------- d-----w- c:\program files\Driver Fetch
2010-02-24 07:43 . 2010-02-27 01:53 664 ----a-w- c:\windows\system32\d3d9caps.dat
2010-02-24 03:44 . 2009-05-18 22:17 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2010-02-24 03:44 . 2008-04-17 21:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll
2010-02-24 03:43 . 2010-02-24 03:43 -------- d-----w- c:\program files\iPod
2010-02-24 03:43 . 2010-02-24 03:44 -------- d-----w- c:\program files\iTunes
2010-02-24 03:42 . 2010-02-24 03:42 -------- d-----w- c:\program files\QuickTime
2010-02-24 00:26 . 2010-02-24 00:26 -------- d-----w- c:\documents and settings\All Users\Application Data\Riverdeep Interactive Learning Limited
2010-02-24 00:26 . 2010-03-13 05:09 -------- d-----w- c:\documents and settings\Ray\Local Settings\Application Data\ApplicationHistory
2010-02-24 00:26 . 2010-02-24 00:26 -------- d-----w- c:\documents and settings\Ray\Local Settings\Application Data\Broderbund Software
2010-02-23 01:22 . 2004-10-08 01:16 35840 ----a-w- c:\windows\system32\drivers\AFS2K.SYS
2010-02-23 01:22 . 2010-02-23 01:22 -------- d-----w- c:\documents and settings\All Users\Application Data\Broderbund Software
2010-02-23 01:21 . 2010-02-23 02:50 -------- d-----w- c:\program files\Web Publish
2010-02-23 01:21 . 2003-07-08 19:45 970752 ----a-w- c:\windows\system32\cdintf210.dll
2010-02-23 01:17 . 2010-02-23 01:17 -------- d-----w- c:\program files\Common Files\Broderbund
2010-02-23 01:17 . 2010-02-24 00:28 -------- d-----w- c:\program files\The Print Shop 21
2010-02-23 01:15 . 2010-02-23 01:15 -------- d-----w- c:\windows\system32\URTTEMP
2010-02-21 02:46 . 2010-02-21 02:46 -------- d-----w- c:\program files\Common Files\Software Update Utility
2010-02-21 02:46 . 2010-02-21 02:46 -------- d-----w- c:\documents and settings\Ray\Application Data\acccore
2010-02-21 02:46 . 2010-02-21 02:48 -------- d-----w- c:\documents and settings\Ray\Local Settings\Application Data\AIM
2010-02-21 02:46 . 2010-02-21 02:46 -------- d-----w- c:\documents and settings\Ray\Local Settings\Application Data\AOL
2010-02-21 02:46 . 2010-02-21 02:46 -------- d-----w- c:\documents and settings\All Users\Application Data\AIM
2010-02-21 02:46 . 2010-02-21 02:46 -------- d-----w- c:\program files\AIM
2010-02-21 02:46 . 2010-02-21 02:46 -------- d-----w- c:\program files\Common Files\AOL
2010-02-21 02:42 . 2001-08-18 06:36 61952 -c--a-w- c:\windows\system32\dllcache\icam4ext.dll
2010-02-21 02:42 . 2001-08-18 06:36 61952 ----a-w- c:\windows\system32\Icam4EXT.dll
2010-02-21 02:42 . 2001-08-17 22:06 154496 -c--a-w- c:\windows\system32\dllcache\icam4usb.sys
2010-02-21 02:42 . 2001-08-17 22:06 154496 ----a-w- c:\windows\system32\drivers\Icam4USB.sys
2010-02-21 02:42 . 2001-08-18 06:36 91136 -c--a-w- c:\windows\system32\dllcache\icam4com.dll
2010-02-21 02:42 . 2001-08-18 06:36 91136 ----a-w- c:\windows\system32\icam4com.dll
2010-02-21 02:42 . 2008-04-14 13:42 53760 -c--a-w- c:\windows\system32\dllcache\vfwwdm32.dll
2010-02-21 02:42 . 2008-04-14 13:42 53760 ----a-w- c:\windows\system32\vfwwdm32.dll
2010-02-17 05:42 . 2010-03-08 00:39 -------- d-----w- c:\documents and settings\Ray\Application Data\gtk-2.0
2010-02-17 05:41 . 2010-03-11 09:04 -------- d-----w- c:\documents and settings\All Users\Application Data\Fiesta Download Manager
2010-02-17 05:41 . 2010-02-17 05:41 -------- d-----w- c:\program files\Fiesta Download Manager
2010-02-16 21:00 . 2010-02-16 21:00 -------- d-----w- c:\program files\MSXML 4.0
2010-02-15 21:02 . 2010-02-15 21:02 -------- d-----w- c:\documents and settings\Ray\Application Data\Canon
2010-02-15 21:00 . 2006-03-29 14:05 32768 ------w- c:\windows\system32\IJRMF.exe
2010-02-15 21:00 . 2010-02-15 21:00 -------- d-----w- c:\documents and settings\All Users\Application Data\InstallShield
2010-02-15 21:00 . 2010-02-15 21:00 -------- d-----w- c:\documents and settings\Ray\Application Data\ScanSoft
2010-02-15 21:00 . 2010-02-15 21:00 -------- d-----w- c:\documents and settings\All Users\Application Data\ScanSoft
2010-02-15 21:00 . 2010-02-15 21:00 -------- d-----w- c:\program files\Common Files\ScanSoft Shared
2010-02-15 20:59 . 2010-02-15 20:59 -------- d-----w- c:\program files\ScanSoft
2010-02-15 20:58 . 2010-02-15 20:58 -------- d-----w- c:\program files\ArcSoft
2010-02-15 20:58 . 1995-08-01 12:44 212480 ----a-w- c:\windows\PCDLIB32.DLL
2010-02-15 20:57 . 1998-10-30 00:45 306688 ----a-w- c:\windows\IsUninst.exe
2010-02-14 17:08 . 2010-02-24 03:24 -------- d-----w- c:\program files\Microsoft
2010-02-14 17:07 . 2010-02-14 17:07 -------- d-----w- c:\program files\Microsoft Silverlight
2010-02-14 16:55 . 2010-02-14 16:55 -------- d-----w- c:\documents and settings\Ray\Local Settings\Application Data\Opera
2010-02-14 16:55 . 2010-02-14 16:55 -------- d-----w- c:\program files\Opera
2010-02-14 16:48 . 2010-02-14 16:48 0 ----a-w- c:\windows\nsreg.dat
2010-02-14 16:48 . 2010-02-14 16:48 -------- d-----w- c:\documents and settings\Ray\Local Settings\Application Data\Mozilla
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-03-16 01:47 . 2009-12-05 02:09 -------- d-----w- c:\documents and settings\Ray\Application Data\Skype
2010-03-15 00:29 . 2010-03-15 00:26 1925088 ----a-w- c:\documents and settings\Ray\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\fpupdatepl\fpupdatepl.exe
2010-03-14 21:18 . 2010-03-14 21:17 7001384 ----a-w- c:\documents and settings\Ray\Application Data\Blitware\DriverFetch\updates\2.2.0.4\driverfetch_setup.exe
2010-03-13 23:31 . 2009-11-28 06:07 -------- d-----w- c:\program files\PokerStars
2010-03-13 21:43 . 2010-03-13 21:43 360584 ----a-w- c:\documents and settings\All Users\Application Data\avg9\update\backup\avgtdix.sys
2010-03-13 21:43 . 2010-03-13 21:43 333192 ----a-w- c:\documents and settings\All Users\Application Data\avg9\update\backup\avgldx86.sys
2010-03-13 21:43 . 2010-03-13 21:43 28424 ----a-w- c:\documents and settings\All Users\Application Data\avg9\update\backup\avgmfx86.sys
2010-03-13 21:43 . 2009-11-23 05:09 242696 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2010-03-13 21:43 . 2009-11-23 05:09 29512 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2010-03-13 21:43 . 2009-11-23 05:09 216200 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2010-03-13 05:04 . 2009-11-22 17:11 -------- d-----w- c:\program files\ATI Technologies
2010-03-13 04:06 . 2010-03-13 04:06 53248 ----a-r- c:\documents and settings\Ray\Application Data\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2010-03-13 04:05 . 2009-11-23 00:47 -------- d-----w- c:\program files\Logitech
2010-03-12 14:02 . 2009-12-16 14:37 9312649 ----a-w- c:\windows\Internet Logs\tvDebug.Zip
2010-03-11 15:38 . 2010-03-11 15:40 1921024 ----a-w- c:\windows\Internet Logs\xDB3.tmp
2010-03-03 20:12 . 2010-03-03 20:11 7099448 ----a-w- c:\documents and settings\Ray\Application Data\Blitware\DriverFetch\updates\2.2.0.3\driverfetch_setup.exe
2010-03-03 18:12 . 2010-03-03 18:11 7100472 ----a-w- c:\documents and settings\Ray\Application Data\Blitware\DriverFetch\updates\2.2.0.1\driverfetch_setup.exe
2010-03-03 02:13 . 2010-03-03 01:56 7098784 ----a-w- c:\documents and settings\Ray\Application Data\Blitware\DriverFetch\updates\2.2.0.0\driverfetch_setup.exe
2010-02-27 18:36 . 2010-02-27 18:36 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
2010-02-27 18:34 . 2009-11-23 00:47 -------- d-----w- c:\program files\Common Files\Logitech
2010-02-27 18:33 . 2009-11-22 17:11 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-02-27 18:28 . 2009-12-05 17:10 -------- d-----w- c:\documents and settings\Ray\Application Data\Logitech
2010-02-27 18:15 . 2009-12-05 16:32 -------- d-----w- c:\documents and settings\All Users\Application Data\UAB
2010-02-27 01:25 . 2009-11-28 05:40 116664 -c-ha-w- c:\windows\system32\mlfcache.dat
2010-02-24 03:43 . 2009-11-23 05:42 -------- d-----w- c:\program files\Common Files\Apple
2010-02-24 03:42 . 2009-11-23 05:43 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer
2010-02-23 02:05 . 2009-11-22 16:52 344272 -c--a-w- c:\documents and settings\Ray\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-02-21 00:08 . 2009-12-05 02:26 -------- d-----w- c:\documents and settings\Ray\Application Data\skypePM
2010-02-16 02:41 . 2010-02-16 02:41 72488 ----a-w- c:\documents and settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 9.0.3.15\SetupAdmin.exe
2010-02-15 21:00 . 2009-11-22 17:11 -------- d-----w- c:\program files\Common Files\InstallShield
2010-02-15 20:58 . 2009-11-23 05:25 -------- d-----w- c:\program files\Canon
2010-02-13 23:38 . 2010-02-13 23:38 -------- d-----w- c:\documents and settings\Ray\Application Data\ieSpell
2010-02-13 23:05 . 2010-02-13 23:05 -------- d-----w- c:\program files\ieSpell
2010-02-13 15:52 . 2009-11-27 22:08 -------- d-----w- c:\program files\Common Files\Adobe
2010-02-13 15:36 . 2010-02-13 15:36 -------- d-----w- c:\documents and settings\All Users\Application Data\TomTom
2010-02-13 15:32 . 2010-02-13 15:32 -------- d-----w- c:\documents and settings\Ray\Application Data\TomTom
2010-02-13 15:32 . 2010-02-13 15:32 -------- d-----w- c:\program files\TomTom International B.V
2010-02-13 15:32 . 2010-02-13 15:32 -------- d-----w- c:\program files\TomTom HOME 2
2010-02-10 00:17 . 2010-02-08 01:21 -------- d-----w- c:\documents and settings\Ray\Application Data\licenses
2010-02-08 01:22 . 2010-02-08 01:21 -------- d-----w- c:\documents and settings\Ray\Application Data\PCMM2009
2010-02-08 01:21 . 2010-02-08 01:21 -------- d-----w- c:\documents and settings\Ray\Application Data\PCMM2010
2010-02-06 23:53 . 2010-02-06 23:53 -------- d-----w- c:\program files\Windows Media Connect 2
2010-01-20 23:52 . 2010-01-20 23:53 1556992 ----a-w- c:\windows\Internet Logs\xDB2.tmp
2010-01-19 05:07 . 2010-01-19 05:14 1555456 ----a-w- c:\windows\Internet Logs\xDB1.tmp
2010-01-05 19:10 . 2010-01-05 19:10 64080 ----a-w- c:\documents and settings\Ray\Application Data\Logishrd\SetClean\NonElevatedDll.dll
2009-12-31 16:50 . 2001-08-23 12:00 353792 ----a-w- c:\windows\system32\drivers\srv.sys
2009-12-26 00:33 . 2009-12-26 00:33 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2009-12-21 19:14 . 2001-08-23 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2009-12-16 18:43 . 2009-11-22 16:16 343040 ----a-w- c:\windows\system32\mspaint.exe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
2008-10-17 02:22 333192 ----a-w- c:\program files\AskBarDis\bar\bin\askBar.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
2009-10-16 20:12 1119488 ----a-w- c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll" [2009-10-16 1119488]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-10-17 333192]
"{F6BD6330-76F8-44d9-B775-87614E2D8374}"= "c:\program files\Fiesta Download Manager\mp3bar.dll" [2010-02-12 222208]
[HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]
[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]
[HKEY_CLASSES_ROOT\clsid\{f6bd6330-76f8-44d9-b775-87614e2d8374}]
[HKEY_CLASSES_ROOT\ToolBand.MP3Bar.1]
[HKEY_CLASSES_ROOT\TypeLib\{09082C8C-70CA-4077-AFBB-C2F85AFC7438}]
[HKEY_CLASSES_ROOT\ToolBand.MP3Bar]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll" [2009-10-16 1119488]
"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-10-17 333192]
"{F6BD6330-76F8-44D9-B775-87614E2D8374}"= "c:\program files\Fiesta Download Manager\mp3bar.dll" [2010-02-12 222208]
Thread Information
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote
